Hi folks! I'm wondering if any of you can save me some time before I
really dive into this.
My current firewall is an old 486 running 5.3-stable/i386. (dmesg
below.) It runs great, and I have no complaints.
I use userland ppp for the connection to my ISP (TekSavvy) for some
features not available in kernel-mode ppp, such as MLPPP (to get around
Bell's throttling of torrents). My DSL modem is a Thompson Speedtouch
516 running in bridge mode, so it does nothing, while my firewall
handles all duties, from establishing the connection, to routing, to
providing internal and external DNS.
I'd really like to upgrade to 5.6/-current, but for my connection to
work, I either have to abandon some features (MLPPP) with kernel-mode
pppoe, or go with something completely new, like npppd.
I've briefly read the man pages, but before I go investing too much
time, and possibly going down the wrong path, I wanted to ask those of
you with experience to point me in the correct direction.
These are my ppp.conf and ppp.linkup files:
---- ppp.conf ----
default:
set log Phase Chat LCP IPCP CCP tun command
set reconnect 3 3
enable mssfixup
enable ipv6cp
mlppp:
set log Phase Chat LCP IPCP CCP tun command
set mtu 1486
set mrru 1485
set speed sync
set cd 5
set dial
set hangup
set login
set timeout 0
set authname [email protected]
set authkey mypassword
set server /var/run/ppp=tun%d 0177
set mode ddial
clone 1,2
link deflink remove
link 1,2 set mode ddial
link 1 set device "!/usr/sbin/pppoe -i xl0"
link 2 set device "!/usr/sbin/pppoe -i xl0"
add! default HISADDR
---- ppp.linkup ----
MYADDR:
!bg sh -c "/sbin/pfctl -ef /etc/pf.conf"
!bg sh -c "/etc/rc.d/postfix start"
!bg sh -c "/usr/sbin/nsd -c /etc/nsd.conf-ext"
!bg sh -c "/usr/local/sbin/unbound"
!bg sh -c "/etc/rc.d/squid start"
!bg sh -c "/usr/sbin/ftp-proxy -R 192.168.1.10 -p 21 -b 75.119.251.119"
-----
Basically, I need npppd to handle these duties. I could be wrong, but
from my brief reading, it seems to me that npppd cannot do those things,
so I'm here asking those with more experience and knowledge, am I wrong
and just haven't done enough homework, or am I looking at the wrong tool
for the job.
Any advice would be appreciated. I'm subscribed to the list, but please
feel free to contact me privately.
Thank-you in advance,
Before I forget, here's the dmesg for the firewall, in case it may help:
----
OpenBSD 5.3-stable (GENERIC) #0: Sat May 3 04:21:01 EDT 2014
[email protected]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) 4 CPU 2.80GHz ("GenuineIntel" 686-class) 2.80 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,CNXT-ID,xTPR,PERF
real mem = 534769664 (509MB)
avail mem = 515043328 (491MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 01/18/05, BIOS32 rev. 0 @ 0xfd71c,
SMBIOS rev. 2.31 @ 0xef7d0 (57 entries)
bios0: vendor IBM version "2AKT48AUS" date 01/18/2005
bios0: IBM 818332F
acpi0 at bios0: rev 0
acpi0: sleep states S0 S1 S3 S4 S5
acpi0: tables DSDT FACP TCPA APIC BOOT
acpi0: wakeup devices USB1(S3) USB2(S3) USB3(S3) USB4(S3) USBE(S3)
SLOT(S5) KBC_(S3) COMA(S5) COMB(S5)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee00000: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 132MHz
ioapic0 at mainbus0: apid 1 pa 0xfec00000, version 20, 24 pins
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 3 (SLOT)
acpiprt2 at acpi0: bus -1 (AGP_)
acpicpu0 at acpi0
acpitz0 at acpi0: critical temperature is 90 degC
acpibtn0 at acpi0: PWRB
bios0: ROM list: 0xc0000/0xa600 0xca800/0x1000 0xcb800/0x1000
0xe0000/0x10000!
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Intel 82865G Host" rev 0x02
vga1 at pci0 dev 2 function 0 "Intel 82865G Video" rev 0x02
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
intagp0 at vga1
agp0 at intagp0: aperture at 0xf0000000, size 0x8000000
inteldrm0 at vga1: apic 1 int 16
drm0 at inteldrm0
uhci0 at pci0 dev 29 function 0 "Intel 82801EB/ER USB" rev 0x02: apic 1
int 16
uhci1 at pci0 dev 29 function 1 "Intel 82801EB/ER USB" rev 0x02: apic 1
int 19
uhci2 at pci0 dev 29 function 2 "Intel 82801EB/ER USB" rev 0x02: apic 1
int 18
uhci3 at pci0 dev 29 function 3 "Intel 82801EB/ER USB" rev 0x02: apic 1
int 16
ehci0 at pci0 dev 29 function 7 "Intel 82801EB/ER USB2" rev 0x02: apic 1
int 23
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1
ppb0 at pci0 dev 30 function 0 "Intel 82801BA Hub-to-PCI" rev 0xc2
pci1 at ppb0 bus 3
fxp0 at pci1 dev 8 function 0 "Intel PRO/100 VE" rev 0x02, i82562: apic
1 int 20, address 00:0d:60:91:5d:a4
inphy0 at fxp0 phy 1: i82562ET 10/100 PHY, rev. 0
skc0 at pci1 dev 9 function 0 "D-Link DGE-530T B1" rev 0x11, Yukon Lite
(0x9): apic 1 int 21
sk0 at skc0 port A: address 00:19:5b:68:91:20
eephy0 at sk0 phy 0: 88E1011 Gigabit PHY, rev. 5
xl0 at pci1 dev 10 function 0 "3Com 3c900 10Base-T" rev 0x00: apic 1 int
22, address 00:10:4b:d5:1a:fe
ichpcib0 at pci0 dev 31 function 0 "Intel 82801EB/ER LPC" rev 0x02
pciide0 at pci0 dev 31 function 1 "Intel 82801EB/ER IDE" rev 0x02: DMA,
channel 0 configured to compatibility, channel 1 configured to compatibility
wd0 at pciide0 channel 0 drive 0: <ST330630A>
wd0: 16-sector PIO, LBA, 29188MB, 59777640 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 4
pciide0: channel 1 ignored (disabled)
ichiic0 at pci0 dev 31 function 3 "Intel 82801EB/ER SMBus" rev 0x02:
apic 1 int 17
iic0 at ichiic0
spdmem0 at iic0 addr 0x50: 256MB DDR SDRAM non-parity PC2700CL2.5
spdmem1 at iic0 addr 0x52: 256MB DDR SDRAM non-parity PC2700CL2.5
usb1 at uhci0: USB revision 1.0
uhub1 at usb1 "Intel UHCI root hub" rev 1.00/1.00 addr 1
usb2 at uhci1: USB revision 1.0
uhub2 at usb2 "Intel UHCI root hub" rev 1.00/1.00 addr 1
usb3 at uhci2: USB revision 1.0
uhub3 at usb3 "Intel UHCI root hub" rev 1.00/1.00 addr 1
usb4 at uhci3: USB revision 1.0
uhub4 at usb4 "Intel UHCI root hub" rev 1.00/1.00 addr 1
isa0 at ichpcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pcppi0 at isa0 port 0x61
spkr0 at pcppi0
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec
mtrr: Pentium Pro MTRR support
vscsi0 at root
scsibus0 at vscsi0: 256 targets
softraid0 at root
scsibus1 at softraid0: 256 targets
sd0 at scsibus1 targ 1 lun 0: <OPENBSD, SR CRYPTO, 005> SCSI2 0/direct fixed
sd0: 29180MB, 512 bytes/sector, 59761208 sectors
root on sd0a (2463a9a61e811c48.a) swap on sd0b dump on sd0b
-----
I hope I'm not forgetting anything... TIA!
--
Scott McEachern
http://www.blackstaff.ca
"The reasonable man adapts himself to the world: the unreasonable one persists in
trying to adapt the world to himself. Therefore all progress depends on the unreasonable
man." -- George Bernard Shaw
